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DETAILED ACTION 

1 . The IDS of 10/27/03 & 1/20/04 were received and considered. 

2. The response of 3/1 2/07 was received and considered. 

3. Claims 1-49 are pending. 

4. Claims 3, 6, 13-24, 36-38 & 45-47 are withdrawn as being directed to a non-elected 
species. 

Election/Restrictions 

5. Applicant's election of Species I and V in the reply filed on 3/12/2007 is acknowledged. 
Because applicant did not distinctly and specifically point out the supposed errors in the 
restriction requirement, the election has been treated as an election without traverse (MPEP 

§ 818.03(a)). 

Claim Objections 

6. Claims 1-2, 4-5, 7-12, 25-27 & 39-42 are objected to because of the following 
informalities: 

a. Regarding claim 1, "generating" (line 1) should be replaced with "generate". 

b. Regarding claim 1, "data set" (line 4) should be replaced with "data set that". 

c. Regarding claim 11, "is arranged form" (line 1) should be replaced with "is 
arranged to form". 

d. Regarding claim 25, "second data set" (line 2) should be replaced with "second 
data set that". 
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e. Regarding claim 39, "two said" 
of said". 

f. Regarding claim 40, "two said" 

g. Regarding claim 41 , "two said" 
7. Appropriate correction is required. 
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(line 1 and line 2) should be replaced with "two 

(line 1) should be replaced with "two of said", 
(line 1) should be replaced with "two of said". 



Claim Rejections - 35 USC § 112 

8. The following is a quotation of the second paragraph of 35 U.S.C. 1 12: 

The specification shall conclude with one or more claims particularly pointing out and distinctly claiming the 
subject matter which the applicant regards as his invention. 

9. Claim 27 is rejected under 35 U.S.C. 1 12, second paragraph, as being indefinite for 
failing to particularly point out and distinctly claim the subject matter which applicant regards as 
the invention. 

h. Regarding claim 27, the limitation "the encryption key" (line 1) lacks sufficient 
antecedent basis. For the purposes of this Office Action, the above limitation is 
understood to read "the cryptographic key". 



Claim Rejections - 35 USC § 102 
10. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 

basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by another filed 
in the United States before the invention by the applicant for patent or (2) a patent granted on an application for 
patent by another filed in the United States before the invention by the applicant for patent, except that an 
international application filed under the treaty defined in section 351(a) shall have the effects for purposes of this 
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subsection of an application filed in the United States only if the international application designated the United 
States and was published under Article 21(2) of such treaty in the English language, 

11. Claims 25-27, 34-35, 39-41, 44 & 49 are rejected under 35 U.S.C. 102(e) as being 
anticipated by U.S. Patent Application Publication 2003/0179885 to Gentry et al. (Gentry). 

Regarding claim 25, Gentry discloses generating a cryptographic key (recipient secret 
element, , i.e. the private key of the recipient, ^[90) using a first data set ( ID^ ,1|86) that 

corresponds to a first identifier {ID^ is identity information associated with the ancestral PKG 
304(b), 1f1[85-86 186 which is used in the creation of , used in Tf88 to create 5^(^+1)), a second 
data set (Pj » 1188) which corresponds to a first trusted party's public key (Pj is the public 
element of ancestral PKG 304(b), 1|86, used in 1|88 to create S,^„^^^\ a third data set (/Z)3, 1|86) 
that corresponds to a second identifier ( ID^ is identity information associated with the ancestral 
PKG 304(d), 111185-86 1|86 which is used in the creation of P3, used in t88 to create 5^(„^,)) and a 
fourth data set ( , 1188) which corresponds to a second trusted party's public key ( P^ is the 
public element of ancestral PKG 304(d), 1186, used in 1f88 to create 5'^(„+i)). 

Regarding claim 26, Gentry discloses encrypting a fifth data set (message) with the 
cryptographic key (secret element, encrypting/signing a message using the sender's (which is the 
same as the recipient in 1IH85-95) secret element, 11143). 

Regarding claim 27, Gentry discloses a method of generating a cryptographic key (key to 

recover V, i.e. Jl^^Qi-i'^i) where Uj = rP^-^ , ^95) using a first data set (U; = rP^- ,1|86) that 

1-2 

corresponds to a first identifier (P^. = Hy{ID^^...JD^^) , 1|86), a second data set that corresponds to 
a first trusted party's public key (ancestor's key generation parameter, Qj., , 1f89), a third data set 
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( Ui = rP^i for the next ancestral PKG, ^86) and a fourth data set that corresponds to a second 
party's public key (next ancestor's key generation parameter, Q,,, , f 89), wherein the 
cryptographic key is formed using a Tate or Weil pairing operating (pairing function e, Tf64 & 

TI66 & ]^e(Qi.pUi), t95) on the first and second data sets (e(Qi.i,Ui) , /=first value, 1[95) and 

i-2 

the third and fourth data sets (e(Qj.pUj) , /=next value, \95). 

Regarding claim 34, Gentry discloses a method of generating a cryptographic key (key to 

recover V, i.e. ne(Qj.i,Ui) where U| = rP^, , 1|95) wherein a bilinear mapping function (pairing 

function e, Tf64 & Tf66) is used to process multiple data sets each comprising data related to a 
respective associated of trusted authority and user identity (Q-value key generation parameter 
fi*om authority, which equals the authority's secret times the root public element, Tf89 and P^. 

which is the public element of the PKGs, 1f86). Note that multiple data sets are achieved from 
i-2 to w + l,1|95. 

Regarding claim 35, Gentry discloses wherein the cryptographic key is an encryption key 
/i+i 

(key to recover V, i.e. ne(Qi_,,Ui) where Uj = rP^^ , 1195), each data set comprising an identity- 

i-2 

based public key (P^., ^86) derived from said user identity (P^,- = (H^(ID^,,„JD^.%1 <i<n), 
TI86), and a public key element of the trusted authority (PKG) that is based on a secret of the 
latter (Q-value key generation parameter from authority, where = s^^P^.X <i<n, ^89, where 

s^. is the authority's (PKG's) secret, 1187). 
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Regarding claims 39-41, Gentry discloses wherein at least two said data sets relate to 
different user identities ( Uj = rP^, , / - 2 to w + 1 , 1|95) and at least two said data sets relate to 

different trusted authorities (Q^^ = s^^P^.l <i<n ,where s^-^ is the particular authority's (PKG's) 
secret, 1[87 & 1|95). 

Regarding claim 44, Gentry discloses wherein there are n data sets (corresponding to the 
levels in Gentry, i.e. i-2 to « + 1 in T|95) and the encryption key is generated as 

n P(^TAi ' i*QiDi ) (see K95, Y\ e(Q|., , U| ) ) where p() is said bilinear mapping function (pairing 

1 1-2 

function e, T|64 & ^66), Q^^^^ is the identity-based public key associated with the /'^ data set 

(value generated for particular lower level PKG, P^, is the identity of the PKG at that level, 1f86), 

Rj^i is the public key element of the trusted authority associated with the i^^ data set (value 

generated for particular lower level PKG, Q^^ = s^^P^.X <i<n, where 5*^, is the ancestral 

authority (PKG) of that level's authority (PKG's) secret, ^[87 & ^95) and r is a random number 
(random encryption parameter, ^95). 

Regarding claim 49, Gentry discloses wherein the bilinear mapping function (pairing 
function e, ^64 & 1166) is one of a Tate pairing and a Weil pairing (1|64). 

Claim Rejections - 35 USC § 103 



12. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 
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(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

13. Claims 1-2, 4-5, 7-12, 28-29, 32-33 & 43 are rejected imder 35 U.S.C. 103(a) as being 
unpatentable over Gentry, in view of U.S. Patent Application Publication 2003/0182554 to 
Gentry et al. (Gentry '554). 

Regarding claim 1, Gentry discloses generating a cryptographic key (recipient secret 
element, , i.e. the private key of the recipient, T[90) using a first data set ( ID^ ,f 86) that 

corresponds to a first identifier {ID^ is identity information associated with the ancestral PKG 

304(b), 11185-86 1186 which is used in the creation of , used in K88 to create 5'^(„+i)), a second 

data set {P^ , 188) which corresponds to a first trusted party's public key (Pj is the public 

element of ancestral PKG 304(b), 1[86, used in 188 to create S,^^^^^\ a third data set ( , 1|86) 

that corresponds to a second identifier ( ID^ is identity information associated with the ancestral 

PKG 304(d), 11185-86 1[86 which is used in the creation of P^ , used in 188 to create S^^^^^^) and a 

fourth data set ( P^ , 188) which corresponds to a second trusted party's public key ( P^ is the 

public element of ancestral PKG 304(d), 186, used in 188 to create 5'^(„+i)). Gentry is silent 

regarding a computer apparatus comprising a memory arranged to perform the key generation. 
However, Gentry '554 teaches a similar system (13) using entities and private key generators 
(122, Fig. 6) where the entities comprise a processor executing program code to carry out the 
cryptographic procedures described therein (1140-42), allowing various entities to determine 
encryption keys (140) using a network (142). Therefore, it would have been obvious to one 
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having ordinary skill in the art at the time the invention was made to modify Gentry to carry out 
the cryptographic key generating procedures on a computer apparatus comprising a processor. 
One of ordinary skill in the art would have been motivated to perform such a modification to 
provide computer entities with a cryptographic key over a network, as taught by Gentry *554. 

Regarding claim 2, Gentry discloses wherein the first and third data sets are public 
parameters ( ID^ and ID^ ) are public parameters (identities are publicly known, for example, 

Regarding claim 4, Gentry discloses wherein the second and fourth data sets (Fj and P3) 

are public parameters (public elements, 1(86). 

Regarding claim 5, Gentry discloses wherein the second and fourth data sets {P2 and P3) 
are public parameters (public elements, 1f86). 

Regarding claim 7, Gentry discloses wherein the first and second data sets {ID^ and ) 
comprise a first common parameter ( ID^ , 1185, 1|86) associated with said first identity (PKG 
304(b)) and said first trusted party (ancestral PKG 304(b); in Fig. 3, PKG 304(b) is second 
lower-level PKG in hierarchy, so P^. of ^[86 is P^ , with respect to PKDG 304(b), and comprises 

//, (/D, , ID2 ) ), and the third and fourth data sets ( ID^ and P3 ) comprise a second common 
parameter ( /D3 , 1|85, 1f86) associated with said second identity (PKG 304(d)) and said second 
trusted party (ancestral PKG 304(d); in Fig. 3, PKG 304(d) is third lower-level PKG in 
hierarchy, so P^^ of^%6 is P3, with respect to PKDG 304(b), and comprises H^ilD^JD^JD^)). 
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Regarding claim 8, Gentry discloses wherein the cryptographic key (secret element) is an 
encryption key (secret element, encrypting/signing a message using the sender's (which is the 
same as the recipient in 1185-95) secret element, 1(143). 

Regarding claim 9, Gentry, as modified above, discloses wherein the processor is 
arranged to encrypt a fifth data set (message) with the encryption key (secret element, 
encrypting/signing a message using the sender's (which is the same as the recipient in 111185-95) 
secret element, 11143). 

Regarding claim 10, Gentry, as modified, discloses wherein the processor is arranged to 
encrypted the fifth data set (message) with the encryption key (secret element, 
encrypting/signing a message using the sender's (which is the same as the recipient in 1I1f85-95) 
secret element. If 143) and a random number (r , 1f95). 

Regarding claim 1 1, Gentry discloses a method of generating a cryptographic key (key to 

recover V, i.e. H^^Qi-i'^i) where Ui = rP^, , 1|95) using a first data set (Uj = rP,, ,1|86) that 

i-2 

corresponds to a first identifier (P^. = H^{ID^,...JD^i) , 1186), a second data set that corresponds to 
a first trusted party's public key (ancestor's key generation parameter, Qj.j , K89), a third data set 
( Ui = rP^, for the next ancestral PKG, If 86) and a fourth data set that corresponds to a second 
party's public key (next ancestor's key generation parameter, Q^., , 1f89), wherein the 
cryptographic key is an encryption key (secret element, encrypting/signing a message using the 
sender's (which is the same as the recipient in 1fH85-95) secret element, If 143), wherein the 
processor is arranged to form said encryption key using a bilinear pairing operation (pairing 
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function e, 1164 & 1|66 & H^CQi-i^Ui), 1f95) on the first and second data sets (e(Q..,,Uj) , 

/=first value, 1(95) and the third and fourth data sets (e(Qi.,, Uj) , /=next value, 1195). Gentry is 

silent regarding a computer apparatus comprising a memory arranged to perform the key 
generation. However, Gentry *554 teaches a similar system (1f3) using entities and private key 
generators (1[22, Fig. 6) where the entities comprise a processor executing program code to carry 
out the cryptographic procedures described therein (1f1f40-42), allowing various entities to 
determine encryption keys (1140) using a network (1f42). Therefore, it would have been obvious 
to one having ordinary skill in the art at the time the invention was made to modify Gentry to 
carry out the cryptographic key generating procedures on a computer apparatus comprising a 
processor. One of ordinary skill in the art would have been motivated to perform such a 
modification to provide computer entities with a cryptographic key over a network, as taught by 
Gentry '554. 

Regarding claim 12, Gentry discloses wherein the bilinear mapping function (pairing 
function e, 1(64 & 1(66) is either a Tate or Weil pairing (1|64). 

Regarding claim 28, Gentry discloses a first entity (ancestral PKG 304(a), Fig. 3, #304a) 
arranged to generate a first data set (/^ , 1|86) that corresponds to a first trusted party's (ancestral 
PKG 304(a)) public key (P, , 1186), a second entity (ancestral PKG 304(b), Fig. 3, #304b) 
arranged to generate a second data set (^2 ' t86) that corresponds to a second trusted party's 
(ancestral PKG 304(b)) public key (P^ , 1|86) and a third entity (ancestral PKG 304(d), Fig. 3, 
#304d & sender, Fig. 3, #306) arranged to generate a cryptographic key (recipient secret 
element, S'^(„+,) , i.e. the private key of the recipient, 1190, where z(/2 + 1) = 4 ) using a first 
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identifier (/Dj , see equation for P^^„^^^ = /f,(/Z)^p...,/D^(„^ij) , ^[90) in conjunction with the first 

data set (/{ , see equation for also called the Extraction algorithm, ^90) and a second 

identifier (7^2 , see equation for P,^„^^^ = H^{1D^^,...JD^^^^^^), ^90) in conjunction with the 

second data set (Pj » see equation for also called the Extraction algorithm, 1|90). Gentry 

is silent regarding the entities being computer entities in a computer system. However, Gentry 
'554 teaches a similar system (Tf3) using entities and private key generators (^22, Fig. 6) where 
the entities comprise a processor executing program code to carry out the cryptographic 
procedures described therein (Tn[40-42), allowing various entities to determine encryption keys 
(^40) using a network (1f42). Therefore, it would have been obvious to one having ordinary skill 
in the art at the time the invention was made to modify Gentry to use computer entities in a 
computer system to carry out the out the cryptographic key generating procedures of the PKGs 
and recipient. One of ordinary skill in the art would have been motivated to perform such a 
modification to provide computer entities with a cryptographic key over a network, as taught by 
Gentry '554. 

Regarding claim 29, Gentry discloses wherein the third computer entity (ancestral PKG 
304(d), Fig. 3, #304d & sender, Fig. 3, #3,06) is arranged to encrypt a third data set (message) 
with the cryptographic key (secret element, encrypting/signing a message using the sender's 
(which is the same as the recipient in ^[^85-95) secret element, 11143). 

Regarding claim 32, Gentry discloses wherein the first and second data sets are public 
parameters (P, and P2 ) are public parameters (public elements for respective entities, 1186). 



Application/Control Number: 10/613,750 Page 1 2 

Art Unit: 2134 

Regarding claim 33, Gentry discloses that the public data parameters (P^ and P2 ) include 
an elliptic curve (Gi, group of points on an elliptic curve used to define the points, 1|64) and a 
generator point on the elliptic curve (each pubUc element is a generator P, ^65). 

Regarding claim 43, the claim is substantially equivalent to claim 34 and is therefore 
rejected under similar rationale imder Gentry. However, Gentry is silent regarding a computer 
apparatus comprising a memory arranged to perform the key generation. However, Gentry *554 
teaches a similar system (Tf3) using entities and private key generators (TI22, Fig. 6) where the 
entities comprise a processor executing program code to carry out the cryptographic procedures 
described therein (TfT|40-42), allowing various entities to determine encryption keys (1140) using a 
network (1(42). Therefore, it would have been obvious to one having ordinary skill in the art at 
the time the invention was made to modify Gentry to carry out the cryptographic key generating 
procedures on a computing apparatus conditioned by a computer program product installed in the 
computing apparatus. One of ordinary skill in the art would have been motivated to perform 
such a modification to provide computer entities with a cryptographic key over a network, as 
taught by Gentry *554. 



Allowable Subject Matter 

14. Claims 30-3 1, 42 & 48 objected to as being dependent upon a rejected base claim, but 
would be allowable if rewritten in independent form including all of the limitations of the base 
claim and any intervening claims. 

Regarding claim 30, Gentry discloses bilinear pairing (f ^64-66 & 195), but lacks 
encrypting using a bilinear pairing when operating on the first and third data sets and the second 
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and fourth data sets. Further, the prior art of record fails to teach or disclose, either alone or in 
combination, the above limitation in combination with the other elements of the claim. 

Regarding claim 42, Gentry lacks wherein different trusted authorities are associated with 
different elements to which said bilinear mapping function can be applied, each trusted authority 
having an associated public key formed from its associated element and a secret of that trusted 
authority. Further, the prior art of record fails to teach or disclose, either alone or in 
combination, the above limitation in combination with the other elements of the claim. 

Regarding claim 48, Gentry discloses wherein the user identity and trusted authority of 
each data set are each associated with a respective point on an elliptic curve (P^, is generated 

using hash function //, , which produces a point in Gi, the points on an elliptic curve (1185) 
which is a group of points on an elliptic curve (t64), and Q^^ = s^^P^^l <i<n, where is a 
generator in Gi (1f85)), the point associated with the user identity (P^, , TI86) is formed by a map- 
to-point hash function ( //, , ^85) applied to the user identity ( ID^. , f 86), the combination of this 
point with a secret (secret element, Tf88) of the trusted authority forming an identity-based private 
key (secret element, 5^. = 5^(,_,) + ). However, the point associated with the trusted 

authority does not form, together with a combination of this point with a secret of the trusted 
authority, a public key of the trusted authority. Further, the prior art of record fails to teach or 
disclose, either alone or in combination, the above limitation in combination with the other 
elements of the claim. 



Conclusion 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Michael J. Simitoski whose telephone number is (571) 272-3841. 
The examiner can normally be reached on Monday - Thursday, 6:45 a.m. - 4:15 p.m.. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kambiz Zand can be reached on (571) 272-381 1 . The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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